Mobile/PDA About Us Advertise here
User User name Password  
  Not registered yet? Register here.
Lost your password? Click here. 		 
  Home   News   Guides   Downloads   Glossary   Hardware   Profiles   Forums   v4  
 Advertise at AfterDawn.com     Link to us!     Private messages     Compose a private message     List of all updated threads     Threads without replies     Search messages
Tuesday 22.7.2025 / 15:18
Search AfterDawn Forums:        In English   Suomeksi   På svenska
afterdawn.com > forums > software, operating systems and more > windows - virus and spyware problems > 2010 rogue malware (paladin antivirus/windows defender) removal tutorial
Show topics
 
Forums
Forums
2010 Rogue Malware (Paladin antivirus/windows defender) Removal tutorial
  Jump to:
 
Posted Message
Phyto
Suspended due to non-functional email address
_ 		23. February 2010 @ 09:02 _ Link to this message    Send private message to this user   
The other day i went idol on thepiratebay.com to go to the bathroom, I came back and my computer was being hacked.

I stopped it as they were gaining admin privledges so i would imagine nothing to bad happened.

So here's the problem... when i boot up my computer a virus version of windows defender boots over the normal one and the my comp starts to install "Paladin anti virus".

Internet explorer barely responds Kaspersky and avast can't catch the virus.

It deleted the exe file of malwarebytes and when i try to reinstall off the internet i cannot same with spybot search and destroy.

When i try and install them or run them from a flash drive or external harddrive the same thing happens.

My recovery drive is also corrupted.

With all that said any ideas?
[ + quote]
Phyto
Suspended due to non-functional email address
_ 		23. February 2010 @ 09:03 _ Link to this message    Send private message to this user   
Also bootsect.bak is now in the root of my C drive
[ + quote]
Phyto
Suspended due to non-functional email address
_ 		23. February 2010 @ 17:32 _ Link to this message    Send private message to this user   
okay now i got malwarebytes running but when i start a scan my comp gets the blue screen of death and crashs even in safe mode.

I have no way of using other programs either because spybot won't run the installer in normal mode and you cannot install it in safe mode.......

Help me =/
[ + quote]
Advertisement
_ 		__
 
_
Phyto
Suspended due to non-functional email address
_ 		23. February 2010 @ 23:02 _ Link to this message    Send private message to this user   
Okay i figured this out myself here is how to fix it...

*This malware program immitates windows defender as well as windows security alerts.
*Kills .exe files which it deems dangerous and blocks your internet connection.
*MALWAREBYTES WILL NOT WORK...even if the exe file is renamed your comp will get the blue screen of death 3 secs after starting the scan.

so with that said.....

1.Run a system scan with your antivirus and delete the infected files it finds

2.REMOVE from system 32 these files: DSSEC.DAT,FNTCACHE.DAT,perfh009.dat as well as perf c d and i,mlang.DAT,NOISE.DAT, and finally perfstringbackup.txt

3.After those files are deleted you will be able to run system backup, do this and revert to whenever you want as long as it was before the virus (i did 10 days)

4.Alot of your shortcuts will be dead now so fix your Iexplorer shortcuts and if you have Utorrent reinstall it and do the same for Malwarebytes and spybot S&D.

5.Run your antivirus do another system scan to finish off the rest of it.
[ + quote]
afterdawn.com > forums > software, operating systems and more > windows - virus and spyware problems > 2010 rogue malware (paladin antivirus/windows defender) removal tutorial
 

Digital video: AfterDawn.com | AfterDawn Forums
Music: MP3Lizard.com
Gaming: Blasteroids.com | Blasteroids Forums | Compare game prices
Software: Software downloads
Blogs: User profile pages
RSS feeds: AfterDawn.com News | Software updates | AfterDawn Forums
International: AfterDawn in Finnish | AfterDawn in Swedish | AfterDawn in Norwegian | download.fi
Navigate: Search | Site map
About us: About AfterDawn Ltd | Advertise on our sites | Rules, Restrictions, Legal disclaimer & Privacy policy
Contact us: Send feedback | Contact our media sales team
 
  © 1999-2025 by AfterDawn Ltd.

  IDG TechNetwork